Nettitude have recently announced a new accreditation with the Civil Aviation Authority (CAA) and Crest called ASSURE, the introduction of which provides a new cybersecurity audit model for third parties providing services to the aerospace industry.
Within this, there are a new set of requirements that ensure cybersecurity providers are subject to a rigorous and continuous accreditation process under the ASSURE Scheme.
This scheme is part of the wider UK Aviation Cyber Strategy, in which the CAA have set out an approach that ensures cybersecurity will continue to be collaborative and supportive for the sector.
The CAA’s vision is that the UK’s transport sector remains ‘safe, secure and resilient in the face of cyber threats, and able to thrive in an increasingly interconnected, digital world’.
As part of this, the CAA were tasked by the Department for Transport (DfT) to develop and implement a regulatory framework for cybersecurity, as well as facilitating oversight of the industry’s activities that relate to mitigating potential cyber risks for civil aviation in the UK.
The CAA has reformatted the Cyber Assessment Framework (CAF), developed by the National Cyber Security Centre (NCSC), specifically for aviation, in which it will be used by aviation organisations to self-assess against 14 principles across four broad objectives. ASSURE Cyber Suppliers and Cyber Professionals will then perform an ASSURE Cyber Audit on an aviation organisation’s CAF for Aviation self-assessment.
Ben Densham, CTO of Nettitude said: “It’s essential that the ever-changing threats from cyber risks are understood from both a security and safety standpoint. The CAA ASSURE Scheme is a robust and tailored scheme designed to deliver assurance to aviation providers that these risks are being identified, the impacts understood and the appropriate measures being put in place.
“Ensuring the UK’s aviation sector is best prepared to meet the current and future cyber threats is the objective and Nettitude is pleased to be able to support and champion this.”
For more security news visit here.